browser vendors and CAs agreeing on high-assurance certificates
Steven M. Bellovin
smb at cs.columbia.edu
Sun Dec 18 00:28:32 EST 2005
http://news.com.com/Browsers+to+get+sturdier+padlocks/2100-1029_3-5989633.html?tag=st.rn
The article is a bit long-winded and short on details, but the basic
message is simple: too many CAs have engaged in a price- and
cost-driven race to the bottom; there are thus too many certificates
being issued that aren't really trustworthy. A group of CAs and
browser vendors have been meeting; they've agreed on a set of standards
for certificates that represent more checking by the CA. Browsers will
be enhanced to display a different sort of notification -- for IE, a
green address bar.
--Steven M. Bellovin, http://www.cs.columbia.edu/~smb
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list